discordrat | c70f968e5ce8b06b2b78ed97493beb764baca210cda3ac0de7869370b441f6ad | Triage

Resubmissions

12-02-2024 19:22

240212-x3l6wacg68 10

12-02-2024 19:09

240212-xt332acg36 10

Sharing

General

Target

free robux.exe
Size

78KB
Sample

240212-x3l6wacg68
MD5

0bc7c77d827c4aa2150f996acb3d86f8
SHA1

a72a9c200e87c58427aea73ed71332202e55979c
SHA256

c70f968e5ce8b06b2b78ed97493beb764baca210cda3ac0de7869370b441f6ad
SHA512

1129905a95f5564746bbd58e5157cb933eb6be3bacf0836ffb28f6ec14b5772a8284e9eba3602af77731cb604239957ec3b24d5688d9bc37d557c40a55f2c3f2
SSDEEP

1536:52WjO8XeEXFh5P7v88wbjNrfxCXhRoKV6+V+wPIC:5Zv5PDwbjNrmAE+0IC

Score

10^/10

discordrat persistence rat rootkit stealer

Malware Config

Extracted

Family

discordrat

Attributes

discord_token
MTIwNjY3NDYyNDQ0ODgyNzQzMg.GBskLd.V0rtT1rVAFTarWyJqEwSzvWz0Icqj1PrASlMYs
server_id
1206674901658894398

Targets

- Target
  
  free robux.exe
- Size
  
  78KB
- MD5
  
  0bc7c77d827c4aa2150f996acb3d86f8
- SHA1
  
  a72a9c200e87c58427aea73ed71332202e55979c
- SHA256
  
  c70f968e5ce8b06b2b78ed97493beb764baca210cda3ac0de7869370b441f6ad
- SHA512
  
  1129905a95f5564746bbd58e5157cb933eb6be3bacf0836ffb28f6ec14b5772a8284e9eba3602af77731cb604239957ec3b24d5688d9bc37d557c40a55f2c3f2
- SSDEEP
  
  1536:52WjO8XeEXFh5P7v88wbjNrfxCXhRoKV6+V+wPIC:5Zv5PDwbjNrmAE+0IC
Score

10^/10

discordrat persistence rat rootkit stealer
- Discord RAT
  A RAT written in C# using Discord as a C2.
  stealer rootkit rat persistence discordrat
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discordratpersistenceratrootkitstealer

behavioral2

discordratpersistenceratrootkitstealer